Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-selective-disclosure-jwt-06.txt: Collaborative attacks against a Verifier

Hi Denis, Am 31.10.23 um 17:10 schrieb Denis: Hi Daniel, Hi Denis, a discussion on claims-based/biometric binding, probably what you're hinting at, I am not hinting at a discussion "on claims-based/biometric binding". Ok. "Collaborative attacks against a Verifier" should be added to

Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-selective-disclosure-jwt-06.txt: Collaborative attacks against a Verifier

Hi Daniel, Hi Denis, a discussion on claims-based/biometric binding, probably what you're hinting at, I am not hinting at a discussion "on claims-based/biometric binding". is out of the scope of this document, since we define neither mechanisms nor rules for that. This should be part

Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-selective-disclosure-jwt-06.txt: Collaborative attacks against a Verifier

Hi Denis, a discussion on claims-based/biometric binding, probably what you're hinting at, is out of the scope of this document, since we define neither mechanisms nor rules for that. This should be part of a discussion with a larger scope, like the Security & Trust document in OIDF's DCP

Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-selective-disclosure-jwt-06.txt: Collaborative attacks against a Verifier

Hi All, Section 11.6. is about "Key Binding" which is indeed an important security feature. However, in the context of "selective disclosure" while this feature is essential, it is insufficient. Let us take an example: If a Token indicates that an individual has the nationality X, in case